$ rpki-client -vvf rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/2CAD3A66595911EA80344709C4F9AE02.roa File: 2CAD3A66595911EA80344709C4F9AE02.roa (raw, json) Hash identifier: RFpssbMsMYAgstv88gTpUDNVcPFKgB5u5+7fNcGeiow= Subject key identifier: 07:8C:07:74:B6:1E:1E:F5:13:94:93:0B:96:9E:D1:40:D1:A3:B0:E6 Certificate issuer: /CN=A914DD78/serialNumber=D3C66C26A9FD1B9E7C455BDDB35159688D0140FE Certificate serial: 0BEE Authority key identifier: D3:C6:6C:26:A9:FD:1B:9E:7C:45:5B:DD:B3:51:59:68:8D:01:40:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/2CAD3A66595911EA80344709C4F9AE02.roa Signing time: Tue 28 Apr 2026 19:25:40 +0000 ROA not before: Tue 28 Apr 2026 19:25:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58869 IP address blocks: 103.248.128.0/22 maxlen: 22 103.248.128.0/24 maxlen: 24 2001:df5::/48 maxlen: 48 2403:5f40:1::/48 maxlen: 48 2403:5f40:4::/48 maxlen: 48 2403:5f40:a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.crl rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:03:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3054 (0xbee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DD78, serialNumber=D3C66C26A9FD1B9E7C455BDDB35159688D0140FE Validity Not Before: Apr 28 19:25:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f109b4-21b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:6e:81:17:bb:04:b5:a4:32:cf:f3:46:ea:ca: c9:df:c3:8d:ef:11:49:64:d5:af:4d:f5:cb:a9:e9: df:36:98:f4:0f:8e:7b:42:36:b2:90:7e:99:f9:79: 16:91:33:b1:30:66:5d:c9:30:06:7c:e0:aa:84:22: 23:86:d9:c6:29:ab:89:d3:1f:51:91:b9:33:68:cc: 18:14:bd:a7:d1:0d:ca:8b:54:c0:67:2f:f9:d8:0d: 4e:e2:fb:5b:e3:24:d4:60:0d:f5:ca:9c:7e:db:97: e2:f0:44:4b:52:0b:93:50:d4:a1:1a:17:90:54:1d: 06:ce:57:08:2d:6e:6f:7d:7e:a0:61:46:f6:79:7a: 19:f1:80:7f:73:5d:f3:a1:04:a4:7d:8f:9f:70:5f: ae:c1:fd:c3:d3:95:9f:1d:54:d5:eb:ba:ac:9f:56: 03:ef:9a:21:c6:34:a5:31:35:99:bb:2e:04:78:e0: 35:d5:29:6d:ba:12:ca:98:d8:f9:97:b1:e9:65:a0: 55:02:3a:16:48:1b:6b:b2:b3:1e:82:7d:8a:70:56: ed:f4:d9:3b:c3:40:07:fd:50:a0:7d:79:4c:42:6c: f1:11:2a:56:99:60:00:23:0a:eb:ff:c6:5e:28:a6: 79:ec:05:0f:04:36:57:0b:bc:2b:8e:d9:1d:fa:34: 38:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:8C:07:74:B6:1E:1E:F5:13:94:93:0B:96:9E:D1:40:D1:A3:B0:E6 X509v3 Authority Key Identifier: keyid:D3:C6:6C:26:A9:FD:1B:9E:7C:45:5B:DD:B3:51:59:68:8D:01:40:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/2CAD3A66595911EA80344709C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.248.128.0/22 IPv6: 2001:df5::/48 2403:5f40:1::/48 2403:5f40:4::/48 2403:5f40:a::/48 Signature Algorithm: sha256WithRSAEncryption 76:16:99:40:07:9f:2e:d8:b5:7f:34:5e:f2:3e:99:2b:7c:95: 6a:c1:13:ab:82:09:c3:95:d3:78:21:e7:69:a1:1b:7c:d1:10: 4a:35:bd:84:00:61:d2:f4:e3:3a:9e:3b:cf:95:2a:34:c7:c6: e0:d8:ab:e6:aa:80:55:09:14:d5:36:3a:48:2f:c9:9a:9c:24: b9:9c:92:ea:a3:6c:5d:e0:d8:14:38:26:0f:a7:b3:30:7a:65: 50:b4:05:7c:9e:1f:97:70:ee:5c:4b:e6:03:c0:4f:07:b9:06: 88:8d:dc:e5:41:9c:b6:52:c1:0c:5c:e1:cf:ec:6f:8d:bf:78: 65:27:57:c5:58:d6:51:5f:14:30:38:cd:5c:a8:a8:4b:46:59: 4d:b4:af:47:27:45:7a:49:ae:f5:29:30:6c:e6:84:b2:8e:ac: d5:ab:c5:75:56:d2:98:04:4b:00:11:3c:58:52:54:2c:a9:4a: d7:78:fd:82:3c:6b:e4:ff:04:83:b9:42:18:96:aa:f0:e2:1f: 09:48:ca:a2:83:48:7d:ee:c1:db:47:1a:c4:43:48:ed:ee:2c: 4a:5e:26:93:2e:6d:a3:c9:6e:b2:5a:5a:5b:27:55:fc:8e:d3: f3:88:e3:88:ae:a3:f5:86:24:62:f3:5f:79:b7:e1:84:8e:9a: ad:1b:68:61 -----BEGIN CERTIFICATE----- MIIFaDCCBFCgAwIBAgICC+4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERENzgxMTAvBgNVBAUTKEQzQzY2QzI2QTlGRDFCOUU3QzQ1NUJEREIzNTE1OTY4 OEQwMTQwRkUwHhcNMjYwNDI4MTkyNTQwWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWYxMDliNC0yMWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApG6BF7sEtaQyz/NG6srJ38ON7xFJZNWvTfXLqenfNpj0D457QjaykH6Z+XkW kTOxMGZdyTAGfOCqhCIjhtnGKauJ0x9RkbkzaMwYFL2n0Q3Ki1TAZy/52A1O4vtb 4yTUYA31ypx+25fi8ERLUguTUNShGheQVB0GzlcILW5vfX6gYUb2eXoZ8YB/c13z oQSkfY+fcF+uwf3D05WfHVTV67qsn1YD75ohxjSlMTWZuy4EeOA11SltuhLKmNj5 l7HpZaBVAjoWSBtrsrMegn2KcFbt9Nk7w0AH/VCgfXlMQmzxESpWmWAAIwrr/8Ze KKZ57AUPBDZXC7wrjtkd+jQ46wIDAQABo4ICjDCCAogwHQYDVR0OBBYEFAeMB3S2 Hh71E5STC5ae0UDRo7DmMB8GA1UdIwQYMBaAFNPGbCap/RuefEVb3bNRWWiNAUD+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REQ3OC9ENEU5NjQ5QzQy RjgxMUVBQjQ2MEU5M0ZDNEY5QUUwMi8wOFpzSnFuOUc1NThSVnZkczFGWmFJMEJR UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA4WnNKcW45RzU1OFJWdmRzMUZaYUkwQlFQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERENzgvRDRFOTY0OUM0MkY4MTFFQUI0NjBFOTNGQzRGOUFFMDIvMkNBRDNBNjY1 OTU5MTFFQTgwMzQ0NzA5QzRGOUFFMDIucm9hMEsGCCsGAQUFBwEHAQH/BDwwOjAM BAIAATAGAwQCZ/iAMCoEAgACMCQDBwAgAQ31AAADBwAkA19AAAEDBwAkA19AAAQD BwAkA19AAAowDQYJKoZIhvcNAQELBQADggEBAHYWmUAHny7YtX80XvI+mSt8lWrB E6uCCcOV03gh52mhG3zREEo1vYQAYdL04zqeO8+VKjTHxuDYq+aqgFUJFNU2Okgv yZqcJLmckuqjbF3g2BQ4Jg+nszB6ZVC0BXyeH5dw7lxL5gPATwe5BoiN3OVBnLZS wQxc4c/sb42/eGUnV8VY1lFfFDA4zVyoqEtGWU20r0cnRXpJrvUpMGzmhLKOrNWr xXVW0pgESwARPFhSVCypStd4/YI8a+T/BIO5QhiWqvDiHwlIyqKDSH3uwdtHGsRD SO3uLEpeJpMubaPJbrJaWlsnVfyO0/OI44iuo/WGJGLzX3m34YSOmq0baGE= -----END CERTIFICATE-----Generated at Wed May 13 07:05:49 2026 by rpki-client